信息网络安全 ›› 2021, Vol. 21 ›› Issue (8): 35-42.doi: 10.3969/j.issn.1671-1122.2021.08.005

• 技术研究 • 上一篇    下一篇

一种基于拜占庭容错的PoS共识协议形式化分析方法

陈凯杰1(), 熊焰1, 黄文超1, 武建双2   

  1. 1.中国科学技术大学计算机科学与技术学院,合肥 230022
    2.合肥天帷信息安全技术有限公司,合肥 230000
  • 收稿日期:2021-06-10 出版日期:2021-08-10 发布日期:2021-09-01
  • 通讯作者: 陈凯杰 E-mail:ckjkevin@mail.ustc.edu.cn
  • 作者简介:陈凯杰(1997—),男,安徽,硕士研究生,主要研究方向为区块链安全、形式化方法|熊焰(1960—),男,安徽,教授,博士,主要研究方向为网络安全、漏洞挖掘、形式化建模|黄文超(1982—),男,湖北,副教授,博士,主要研究方向为网络安全、漏洞挖掘、形式化建模|武建双(1984—),男,山西,硕士,主要研究方向为网络安全等级保护
  • 基金资助:
    国家自然科学基金(61972369);国家重点研发计划(2018YFB2100301)

A Formal Analysis Method of PoS Consensus Protocol Based on Byzantine Fault Tolerance

CHEN Kaijie1(), XIONG Yan1, HUANG Wenchao1, WU Jianshuang2   

  1. 1. Department of Computer Science and Technology, University of Science and Technology of China, Hefei 230022, China
    2. Hefei Tianwei Information Security Technology Co., Ltd., Hefei 230000, China
  • Received:2021-06-10 Online:2021-08-10 Published:2021-09-01
  • Contact: CHEN Kaijie E-mail:ckjkevin@mail.ustc.edu.cn

摘要:

区块链共识协议是一种确保区块链网络中不同节点的数据达成一致的重要机制,随着区块链应用的爆发性增长,针对区块链共识协议的攻击不断出现。文章提出一种基于拜占庭容错的PoS共识协议形式化分析方法,通过归纳建模共识节点整体状态迁移解决协议模型状态空间爆炸问题,同时结合实际安全威胁形式化建模信道模型和攻击者模型,根据协议一致性要求形式化描述两大类安全属性并进行形式化验证。实验结果表明,该类协议具有拜占庭容错能力。最后,文章分析了针对0确认交易的双花攻击所需的条件,并提出防护方法。

关键词: 区块链共识协议, 拜占庭容错, 归纳建模, 形式化分析

Abstract:

The blockchain consensus protocol is an important mechanism to ensure that the data of different nodes reach consensus in the blockchain network. With the explosive growth of blockchain applications, attacks against blockchain consensus mechanisms continue to emerge. This paper proposes a formal analysis method of PoS consensus protocol based on Byzantine fault tolerance. To solve the problem of protocol model state space explosion, the method first inductively models the state migration process of all consensus nodes. Then, the communication channel models and attacker models are formally modeled based on the actual security threats. Finally, according to the requirements of protocol consistency, two kinds of security properties are formally modeled and verified. The experimental results show that the protocol has the claimed Byzantine fault tolerance, and the protocol has a double-spending attack against the zero-confirmation transaction. This paper further analyzes the conditions to implement the attack and puts forward suggestions for protection.

Key words: blockchain consensus protocol, Byzantine fault tolerance, inductive modeling, formal analysis

中图分类号: